Wabtec Corporation Company Cyber Security Posture
wabteccorp.comWabtec is a leading global provider of equipment, systems, digital solutions, and value-added services. Whether it's freight rail, transit, mining, industrial or marine, our expertise, technologies, and people - together - are accelerating the future of transportation.
Wabtec Corporation Company Details
wabtec-corporation
10997 employees
275966.0
336
Railroad Equipment Manufacturing
wabteccorp.com
40
WAB_2604974
In-progress
Wabtec Corporation Risk Score (AI oriented)Between 900 and 1000
This score is AI-generated and less favored by cyber insurers, who prefer the TPRM score.
Wabtec Corporation Global Score.png)
Wabtec Corporation Company Scoring based on AI Models
| Model Name | Date | Description | Current Score Difference | Score |
|---|---|---|---|---|
| AVERAGE-Industry | 03-12-2025 | This score represents the average cybersecurity rating of companies already scanned within the same industry. It provides a benchmark to compare an individual company's security posture against its industry peers. | N/A | Between 900 and 1000 |
Wabtec Corporation Company Cyber Security News & History
| Entity | Type | Severity | Impact | Seen | Url ID | Details | View |
|---|---|---|---|---|---|---|---|
| Wabtec Corporation | Breach | 60 | 3 | 3/2022 | WAB1028072625 | Link | |
Rankiteo Explanation : Attack with significant impact with internal employee data leaksDescription: The Vermont Office of the Attorney General reported that Wabtec Corporation experienced a data breach on June 26, 2022, involving unauthorized access to sensitive information, including names and additional personal data. The breach was reported on December 30, 2022. | |||||||
| Wabtec Corporation | Breach | 85 | 4 | 6/2022 | WAB438080425 | Link | |
Rankiteo Explanation : Attack with significant impact with customers data leaksDescription: On December 30, 2022, the Maine Office of the Attorney General reported that Wabtec Corporation experienced a data breach involving unauthorized access to its systems on June 26, 2022, due to malware. The breach potentially affected 7,415 individuals, including 2 Maine residents, with compromised information including Social Security numbers. As a response, Wabtec offered 24 months of complimentary credit monitoring and identity restoration services through Equifax. | |||||||
| Wabtec Corporation | Ransomware | 100 | 5 | 01/2023 | WAB18514123 | Link | |
Rankiteo Explanation : Attack threatening the organization's existenceDescription: U.S. rail and locomotive company Wabtec Corporation was targeted by the Lockbit ransomware group in a cyber attack that exposed personal and sensitive information. The hackers breached their network and installed malware on specific systems as early as March 15th, 2022. LockBit also published samples of data stolen from Wabtec and eventually leaked all stolen data on August 20th, 2022, presumably after a ransom was not paid The stolen files contained sensitive personal information like Full Name, Date of Birth, Non-US National ID Number, Non-US Social Insurance Number or Fiscal Code, Passport Number, IP Address, Employer Identification Number (EIN), USCIS or Alien Registration Number, NHS (National Health Service) Number (UK), Medical Record/Health Insurance Information, Photograph, Gender/Gender Identity, Salary, Social Security Number (US),Financial Account Information, Payment Card Information, Account Username and Password, Biometric Information, Race/Ethnicity, Criminal Conviction or Offense, Sexual Orientation/Life, Religious Beliefs, Union Affiliation. The company sent notices of the data breach to all impacted individuals. | |||||||
Wabtec Corporation Company Subsidiaries
Wabtec is a leading global provider of equipment, systems, digital solutions, and value-added services. Whether it's freight rail, transit, mining, industrial or marine, our expertise, technologies, and people - together - are accelerating the future of transportation.
Access Data Using Our API
Get company history
Rapid.png)
Wabtec Corporation Cyber Security News
Wabtec Finalizes Acquisition of Evidentโs Inspection Technologies Division
Wabtec Corporation is revolutionizing the way the world moves for future generations. The Company is a leading global provider of equipment,ย ...
Locomotive Maker Wabtec Discloses Ransomware Attack 9 Months After Hackers Breached its Network
Wabtec Corporation, one of the world's top manufacturers of locomotives, freight cars and passenger transit vehicles, has disclosed a data breach that exposedย ...
Wabtec Achieves Certification, Enhancing Cybersecurity for Its Customers
Wabtec actively participates in industry and standards groups, like UNIFE and IEC Technical Committee 9/PT 63452, to support cybersecurity inย ...
Wabtec Corporation Appoints Juan Perez to the Board of Directors
โJuan is a respected technology leader with extensive experience driving digital transformations for Fortune 500 companies,โ said Wabtecย ...
Wabtec to Acquire Evidentโs Inspection Technologies Division
PITTSBURGH, January 14, 2025 โ Wabtec Corporation (NYSE: WAB) announced a definitive agreement to acquire Evident's Inspection Technologiesย ...
Railway Cybersecurity Market Size | Industry Report, 2030
Railway cybersecurity market size was valued at USD 7.50 billion in 2024 and is projected to. Modern rail networks rely heavily on information and communicationย ...
Wabtec to Acquire Dellner Couplers
PITTSBURGH, March 18, 2025 โ Wabtec Corporation (NYSE: WAB) announced today a definitive agreement to acquire Dellner Couplers, a globalย ...
Dream Weavers: Behind Wabtecโs Worldwide Innovation Machine
A stealth group of AI, automation, design, electrical, mechanical, cyber, and cloud engineering savants whose early-stage technology successes are matched onlyย ...
Freight company Wabtec discloses June cyberattack impacting US, overseas operations
Wabtec Corp., one of largest freight and transit rail equipment and services providers, disclosed Friday it was the target of a cyberattack discovered in Juneย ...
Wabtec Corporation Similar Companies
Faiveley Transport
In December 2016, Wabtec and Faiveley Transport merged to create one of the worldโs largest public rail equipment companies. Today, the companyโs transit business continues to operate under the name Faiveley Transport, a global rail and bus leader that has been providing best-in-class solutions to
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Wabtec Corporation CyberSecurity History Information
How many cyber incidents has Wabtec Corporation faced?
Total Incidents: According to Rankiteo, Wabtec Corporation has faced 3 incidents in the past.
What types of cybersecurity incidents have occurred at Wabtec Corporation?
Incident Types: The types of cybersecurity incidents that have occurred incidents Ransomware and Breach.
How does Wabtec Corporation detect and respond to cybersecurity incidents?
Detection and Response: The company detects and responds to cybersecurity incidents through third party assistance with Equifax and communication strategy with Sent notices of the data breach to all impacted individuals.
Incident Details
Can you provide details on each incident?
Incident : Data Breach
Title: Wabtec Corporation Data Breach
Description: Unauthorized access to Wabtec Corporation's systems due to malware, potentially affecting 7,415 individuals including 2 Maine residents.
Date Detected: 2022-06-26
Date Publicly Disclosed: 2022-12-30
Type: Data Breach
Attack Vector: Malware
Incident : Data Breach
Title: Wabtec Corporation Data Breach
Description: Unauthorized access to sensitive information, including names and additional personal data.
Date Detected: 2022-06-26
Date Publicly Disclosed: 2022-12-30
Type: Data Breach
Incident : Ransomware Attack
Title: Wabtec Corporation Data Breach by Lockbit Ransomware Group
Description: U.S. rail and locomotive company Wabtec Corporation was targeted by the Lockbit ransomware group in a cyber attack that exposed personal and sensitive information.
Date Detected: 2022-03-15
Type: Ransomware Attack
Attack Vector: Malware installation on specific systems
Threat Actor: Lockbit ransomware group
Motivation: Ransom
What are the most common types of attacks the company has faced?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident?
Incident : Data Breach WAB438080425
Data Compromised: Social Security numbers
Incident : Data Breach WAB1028072625
Data Compromised: names, additional personal data
Incident : Ransomware Attack WAB18514123
Data Compromised: Full Name, Date of Birth, Non-US National ID Number, Non-US Social Insurance Number or Fiscal Code, Passport Number, IP Address, Employer Identification Number (EIN), USCIS or Alien Registration Number, NHS (National Health Service) Number (UK), Medical Record/Health Insurance Information, Photograph, Gender/Gender Identity, Salary, Social Security Number (US), Financial Account Information, Payment Card Information, Account Username and Password, Biometric Information, Race/Ethnicity, Criminal Conviction or Offense, Sexual Orientation/Life, Religious Beliefs, Union Affiliation
What types of data are most commonly compromised in incidents?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Social Security numbers, names, additional personal data, Personal Information and Sensitive Information.
Which entities were affected by each incident?
Incident : Data Breach WAB1028072625
Entity Type: Corporation
Incident : Ransomware Attack WAB18514123
Entity Type: Rail and Locomotive Company
Industry: Transportation
Location: United States
Response to the Incidents
What measures were taken in response to each incident?
Incident : Data Breach WAB438080425
Third Party Assistance: Equifax
Incident : Ransomware Attack WAB18514123
Communication Strategy: Sent notices of the data breach to all impacted individuals
How does the company involve third-party assistance in incident response?
Third-Party Assistance: The company involves third-party assistance in incident response through Equifax.
Data Breach Information
What type of data was compromised in each breach?
Incident : Data Breach WAB438080425
Type of Data Compromised: Social Security numbers
Number of Records Exposed: 7415
Personally Identifiable Information: Social Security numbers
Incident : Data Breach WAB1028072625
Type of Data Compromised: names, additional personal data
Incident : Ransomware Attack WAB18514123
Type of Data Compromised: Personal Information, Sensitive Information
Sensitivity of Data: High
Data Exfiltration: Yes
Personally Identifiable Information: Yes
Ransomware Information
Was ransomware involved in any of the incidents?
Incident : Ransomware Attack WAB18514123
Ransom Paid: No
Ransomware Strain: Lockbit
Data Exfiltration: Yes
References
Where can I find more information about each incident?
Incident : Data Breach WAB438080425
Source: Maine Office of the Attorney General
Date Accessed: 2022-12-30
Incident : Data Breach WAB1028072625
Source: Vermont Office of the Attorney General
Where can stakeholders find additional resources on cybersecurity best practices?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Maine Office of the Attorney GeneralDate Accessed: 2022-12-30, and Source: Vermont Office of the Attorney General.
Investigation Status
How does the company communicate the status of incident investigations to stakeholders?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through was Sent notices of the data breach to all impacted individuals.
Post-Incident Analysis
What is the company's process for conducting post-incident analysis?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Equifax.
Additional Questions
General Information
Has the company ever paid ransoms?
Ransom Payment History: The company has Paid ransoms in the past.
Who was the attacking group in the last incident?
Last Attacking Group: The attacking group in the last incident was an Lockbit ransomware group.
Incident Details
What was the most recent incident detected?
Most Recent Incident Detected: The most recent incident detected was on 2022-06-26.
What was the most recent incident publicly disclosed?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2022-12-30.
Impact of the Incidents
What was the most significant data compromised in an incident?
Most Significant Data Compromised: The most significant data compromised in an incident were Social Security numbers, names, additional personal data, Full Name, Date of Birth, Non-US National ID Number, Non-US Social Insurance Number or Fiscal Code, Passport Number, IP Address, Employer Identification Number (EIN), USCIS or Alien Registration Number, NHS (National Health Service) Number (UK), Medical Record/Health Insurance Information, Photograph, Gender/Gender Identity, Salary, Social Security Number (US), Financial Account Information, Payment Card Information, Account Username and Password, Biometric Information, Race/Ethnicity, Criminal Conviction or Offense, Sexual Orientation/Life, Religious Beliefs and Union Affiliation.
Response to the Incidents
What third-party assistance was involved in the most recent incident?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was Equifax.
Data Breach Information
What was the most sensitive data compromised in a breach?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Social Security numbers, names, additional personal data, Full Name, Date of Birth, Non-US National ID Number, Non-US Social Insurance Number or Fiscal Code, Passport Number, IP Address, Employer Identification Number (EIN), USCIS or Alien Registration Number, NHS (National Health Service) Number (UK), Medical Record/Health Insurance Information, Photograph, Gender/Gender Identity, Salary, Social Security Number (US), Financial Account Information, Payment Card Information, Account Username and Password, Biometric Information, Race/Ethnicity, Criminal Conviction or Offense, Sexual Orientation/Life, Religious Beliefs and Union Affiliation.
What was the number of records exposed in the most significant breach?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 746.0.
Ransomware Information
What was the highest ransom paid in a ransomware incident?
Highest Ransom Paid: The highest ransom paid in a ransomware incident was No.
References
What is the most recent source of information about an incident?
Most Recent Source: The most recent source of information about an incident are Maine Office of the Attorney General and Vermont Office of the Attorney General.
What Do We Measure?
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
